Search

Traffic File Update - April 2012

This Traffic IQ Professional update for April 2012 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for April 2012

81 Application Exploits

7T Interactive Graphical SCADA System 'ListAll' Vulnerability (gen_shell_bind_tcp) S
7T Interactive Graphical SCADA System 'ListAll' Vulnerability (gen_shell_reverse_tcp) S
7T Interactive Graphical SCADA System 'ListAll' Vulnerability (MessageBox) S
7T Interactive Graphical SCADA System 'ListAll' Vulnerability (win_exec) S
7T Interactive Graphical SCADA System 'ListAll' Vulnerability (win_shell_bind_tcp_xpfw) S
7T Interactive Graphical SCADA System 'ListAll' Vulnerability (win_shell_reverse_ord_tcp) S
CyberLink Power2Go 'P2G' File Buffer Overflow Vulnerability (MessageBox) S
CyberLink Power2Go 'P2G' File Buffer Overflow Vulnerability (win_exec) S
CyberLink Power2Go 'P2G' File Buffer Overflow Vulnerability (win_shell_bind_tcp) S
CyberLink Power2Go 'P2G' File Buffer Overflow Vulnerability (win_shell_reverse_ord_tcp) S
CyberLink Power2Go 'P2G' File Buffer Overflow Vulnerability (win_shell_reverse_tcp) S
DATAC RealWin SCADA Server 'On_FC_BINFILE_FCS_FILE' Vulnerability (debug_trap) S
DATAC RealWin SCADA Server 'On_FC_BINFILE_FCS_FILE' Vulnerability (MessageBox) S
DATAC RealWin SCADA Server 'On_FC_BINFILE_FCS_FILE' Vulnerability (win_adduser) S
DATAC RealWin SCADA Server 'On_FC_BINFILE_FCS_FILE' Vulnerability (win_exec) S
DATAC RealWin SCADA Server 'On_FC_BINFILE_FCS_FILE' Vulnerability (win_shell_bind_tcp) S
DATAC RealWin SCADA Server 'On_FC_BINFILE_FCS_FILE' Vulnerability (win_shell_reverse_ord_tcp) S
DATAC RealWin SCADA Server 'On_FC_BINFILE_FCS_FILE' Vulnerability (win_shell_reverse_tcp) S
EMC Data Protection Advisor DPA_Utilities Library Vulnerability S
EMC Data Protection Advisor DPA_Utilities Library Vulnerability_1 S
GSM SIM Utility '.sms' Buffer Overflow Vulnerability (MessageBox) S
GSM SIM Utility '.sms' Buffer Overflow Vulnerability (win_exec) S
GSM SIM Utility '.sms' Buffer Overflow Vulnerability (win_shell_bind_tcp) S
GSM SIM Utility '.sms' Buffer Overflow Vulnerability S
HTTP Arbor Networks Peakflow SP 'index' Cross Site Scripting Vulnerability S
HTTP D-Link DCS-5605 PTZ 'SelectDirectory()' Method Buffer Overflow Vulnerability S
HTTP Firewall Analyzer 'createAnomaly.do' Cross Site Scripting Vulnerability S
HTTP Firewall Analyzer 'index2.do' Cross Site Scripting Vulnerability S
HTTP Firewall Analyzer 'mindex.do' Cross Site Scripting Vulnerability S
HTTP Firewall Analyzer 'syslogViewer.do' Cross Site Scripting Vulnerability S
HTTP Flock Denial of Service Vulnerability S
HTTP Newscoop 'Back' Cross Site Scripting Vulnerability S
HTTP Newscoop 'error_code' Cross Site Scripting Vulnerability S
HTTP ownCloud Cross Site Scripting Vulnerability CVE-2012-2269 S
HTTP ownCloud Open Redirect Vulnerability CVE-2012-2270 S
HTTP Quest InTrust 'AnnotateX.dll' Code Execution Vulnerability S
HTTP Quest InTrust (ARDoc.dll) ReportTree Class File Overwrite Vulnerability S
HTTP Quest InTrust (ARDoc.dll) SimpleTree Class File Overwrite Vulnerability S
HTTP Sockso Directory Traversal Vulnerability S
HTTP Sockso Directory Traversal Vulnerability_1 S
HTTP TRENDnet TV-IP121WN 'OpenFileDlg()' Method Buffer Overflow Vulnerability S
HTTP TVersity 'geturl' Arbitrary File Download Vulnerability S
HTTP TVersity 'geturl' Arbitrary File Download Vulnerability_1 S
IrfanView FlashPix PlugIn CVE-2012-0278 Buffer Overflow Vulnerability S
LibreOffice '.rtf' File Memory Corruption Vulnerability S
MailMax 'USER' POP3 Command Remote Buffer Overflow Vulnerability S
Presto! PageManager Network Group Service Packet Arbitrary File Access S
Presto! PageManager Network Group Service Packet Arbitrary File Access_1 S
Real Networks RealPlayer '.mp4' File Memory Corruption Vulnerability S
Rockwell Automation EtherNet IP (Register Session Command) (SCADA) S
Rockwell Automation EtherNet IP CIP Commands (Service STOP Request) (SCADA) S
Rockwell Automation EtherNet IP CIP Commands CRASHCPU Vulnerability (SCADA) S
Rockwell Automation EtherNet IP CIP Commands CRASHETHER Vulnerability (SCADA) S
Rockwell Automation EtherNet IP CIP Commands RESETETHER Vulnerability (SCADA) S
Samsung TV and BD Products Multiple Denial Of Service Vulnerabilities S
Samsung TV and BD Products Multiple Denial Of Service Vulnerabilities_1 S
Siemens FactoryLink 'vrn.exe' Buffer Overflow Vuln (win_shell_reverse_ord_tcp) (SCADA) S
Siemens FactoryLink 'vrn.exe' Buffer Overflow Vulnerability (gen_shell_bind_tcp) (SCADA) S
Siemens FactoryLink 'vrn.exe' Buffer Overflow Vulnerability (gen_shell_reverse_tcp) (SCADA) S
Siemens FactoryLink 'vrn.exe' Buffer Overflow Vulnerability (MessageBox) (SCADA) S
Siemens FactoryLink 'vrn.exe' Buffer Overflow Vulnerability (win_adduser) (SCADA) S
Siemens FactoryLink 'vrn.exe' Buffer Overflow Vulnerability (win_exec) (SCADA) S
Siemens FactoryLink 'vrn.exe' Buffer Overflow Vulnerability (win_shell_bind_tcp) (SCADA) S
Siemens FactoryLink CSService Buffer Overflow Vuln (win_shell_bind_tcp_xpfw) (SCADA) S
Siemens FactoryLink CSService Buffer Overflow Vuln (win_shell_reverse_ord_tcp) (SCADA) S
Siemens FactoryLink CSService Buffer Overflow Vulnerability (MessageBox) (SCADA) S
Siemens FactoryLink CSService Buffer Overflow Vulnerability (win_exec) (SCADA) S
Siemens FactoryLink CSService Buffer Overflow Vulnerability (win_shell_bind_tcp) (SCADA) S
Siemens FactoryLink CSService Buffer Overflow Vulnerability (win_shell_reverse_tcp) (SCADA) S
TwinCAT Scope TCatScopeView.exe 'SVW' Buffer Overflow Vulnerability (SCADA) S
TwinCAT Scope TCatScopeView.exe 'WSM' Buffer Overflow Vulnerability (SCADA) S
VLC Media Player Divide-By-Zero DoS Vulnerability (CVE-2012-2396) S
xArrow Decompression NULL Pointer Remote Vulnerability (SCADA) S
xArrow Heap Corruption Remote Vulnerability (SCADA) S
xArrow Invalid Read Access Remote Vulnerability (SCADA) S
xArrow Memory Corruption Remote Vulnerability (SCADA) S
Xion Audio Player '.aiff' File Remote DoS Vulnerability S
xRadio '.xrl' File Buffer Overflow Vulnerability (MessageBox) S
xRadio '.xrl' File Buffer Overflow Vulnerability (win_exec) S
xRadio '.xrl' File Buffer Overflow Vulnerability (win_shell_bind_tcp) S
xRadio '.xrl' File Buffer Overflow Vulnerability (win_shell_reverse_tcp) S

6 Evasions

Evasion HTTP Header Folding (for CVE-2012-1465) S
Evasion HTTP Method Random Case (for CVE-2012-1465) S
Evasion HTTP Method Random Invalid (for CVE-2012-1465) S
Evasion HTTP URI Directory Fake Relative (for CVE-2012-1465) S
Evasion HTTP URI Directory Self Reference (for CVE-2012-1465) S
Evasion HTTP URI Fake End (for CVE-2012-1465) S

15 Standard Protocol Traffic

Protocol DNP3 Read (Class 1) Function (SCADA) S
Protocol DNP3 Request Link Status Function (SCADA) S
Protocol DNP3 Write Function (SCADA) S
Protocol Modbus (Mask Write Register) (SCADA) S
Protocol Modbus (Read Discrete Inputs) (SCADA) S
Protocol Modbus (Read FIFO Queue) (SCADA) S
Protocol Modbus (Read File Record) (SCADA) S
Protocol Modbus (Read Holding Registers) (SCADA) S
Protocol Modbus (Read Input Registers) (SCADA) S
Protocol Modbus (Read Write Multiple Registers) (SCADA) S
Protocol Modbus (Write File Record) (SCADA) S
Protocol Modbus (Write Multiple Coils) (SCADA) S
Protocol Modbus (Write Multiple Registers) (SCADA) S
Protocol Modbus (Write Single Coil) (SCADA) S
Protocol Modbus (Write Single Register) (SCADA) S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.